VYPR

Collaborator Server

by Smartbear

CVEs (1)

  • CVE-2020-26118HigJan 11, 2021
    risk 0.58cvss 8.8epss 0.04

    In SmartBear Collaborator Server through 13.3.13302, use of the Google Web Toolkit (GWT) API introduces a post-authentication Java deserialization vulnerability. The application's UpdateMemento class accepts a serialized Java object directly from the user without properly…